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Top Stories 

• Volkswagen announced September 22 emissions discrepancies in 11 million vehicles 
worldwide, and pledged $7.3 billion to cover recall and other costs. - CNN (See item 6) 

• Washington, D.C. Metro service for the Green and Yellow lines between the U Street and 
Fort Totten stations was restored September 22 after being suspended while authorities 
evacuated 500-600 people from a Metro tunnel after a train lost power. - WRC 4 
Washington, D.C. (See item 12 ) 

• The U.S. Office of Personnel Management confirmed September 23 that the number of 
current and formal Federal employees impacted in a data breach was up to 5.6 million, up 
from the 1.1 million reported in July. - NBC News (See item 18 ) 

• The U.S. President declared a major disaster September 22 for the 76,067-acre Valley Fire 
in California that was 75 percent contained, and crews continued to battle the 70,868 Butte 
fire, which was 80 percent contained. - Los Angeles Times (See item 20 ) 
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Energy Sector 



1. September 23, WLKY 32 Louisville - (Kentucky) Owensboro utility to close unit of 
coal-fired power plant. Unit 1 of the coal-fired Elmer Smith Power Plant in Kentucky 
will be shut down between 2019 and 2021, the Owensboro Municipal Utilities 
announced September 23. The company stated that the loss of power will likely be 
replaced by natural gas or renewable energy. 

Source: http://www.wlky.com/news/Owensboro-utilitv-to-close-unit-of-coal-fired- 
power-plant/35430832 

2. September 22, WGHP 8 High Point - (North Carolina; Virginia) Duke Energy to 
move 1.2 million tons of coal ash to landfill. Duke Energy reported September 22 that 
the company will begin moving 1.2 million tons of coal ash to a Jetersville, Virginia 
landfill as part of its agreement to remove the coal ash from Eden’s Dan River Steam 
Station in North Carolina by August 2019 following a February 2014 coal ash spill. 
Source: http://mvfox8.com/2015/09/22/duke-energv-to-move-l-2-million-tons-of-coal- 
ash-to-landfill/ 



Chemical Industry Sector 

Nothing to report 

Nuclear Reactors, Materials, and Waste Sector 

3. September 22, York Daily Record - (Pennsylvania) Peach bottom shuts down reactor 
for planned refueling, maintenance. Exelon-owned Peach Bottom Atomic Power 
Station in York County shut down 1 of its 2 reactors September 21 as a planned 
procedure to refuel the reactor and modify equipment. Officials estimated that the 
repairs will allow the reactor to generate more power and 3,000 supplemental workers 
are scheduled to travel from throughout the country to work on the unit. 

Source: http://www.vdr.com/business/ci 28857467/peach-bottom-shuts-down-reactor- 
planned-refueling-maintenance 

Critical Manufacturing Sector 

4. September 22, U.S. Department of Labor - (New York) Queens manufacturer 
exposes employees to new and recurring hazards. The Occupational Safety and 
Health Administration cited Juniper Elbow Co. Inc., doing business as Queens-based 
Juniper Industries Inc., with 4 repeat and 11 serious violations September 22 for 
blocked exit routes; missing or unmounted fire extinguishers, and equipment not being 
guarded against employee contact, among other violations. Proposed penalties total 
$85,140. 

Source: 

https://www.osha.gov/pls/oshaweb/owadisp.show document?p table=NEWS RELEA 
SES&p id=28761 

5. September 22, U.S. Department of Labor - (Missouri) OSHA cites Martin Foundry 
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Co. for workplace lead exposure. The Occupational Safety and Health Administration 
cited Kansas City-based Martin Foundry Co, September 22 for 5 repeated and 7 serious 
violations including employee lead overexposure, lack of clean changing rooms, failure 
to provide clean, dry protective clothing, failing to train workers on lead hazards, and 
failing to provide separate lunch facilities to prevent lead ingestion, among others. 
Proposed penalties total $1 19,000. 

Source: 

https://www.osha.gov/pls/oshaweb/owadisp.show document?p table=NEWS RELEA 
SES&p id=28758 

6. September 22, CNN - (International) Volkswagen scandal widens. Volkswagen 
announced September 22 that internal investigations revealed significant discrepancies 
in 11 million vehicles worldwide, after U.S. regulators reported that the company had 
installed software to engage emissions management on diesel vehicles when being 
tested, only to run up to 40 times more emissions when on the road. Volkswagen 
pledged $7.3 billion to cover the cost of affected vehicle recalls and other mitigation 
efforts. 

Source: http://monev.cnn.com/2015/09/22/news/vw-recall-diesel/ 

Defense Industrial Base Sector 

Nothing to report 

Financial Services Sector 

7. September 22, U.S. Securities and Exchange Commission - (National) SEC charges 
investment adviser with failing to adopt proper cybersecurity policies and 
procedures prior to breach. St. Louis-based R.T. Jones Capital Equities Management 
agreed September 22 to pay $75,000 to settle U.S. Securities and Exchange 
Commission charges that the firm failed to establish required cybersecurity policies and 
procedures in advance of a breach that compromised information of about 100,000 
individuals in July 2013. 

Source: http ://www . sec . gov/news/pressrelease/20 1 5-202 .html 

8. September 22, Office of the Attorney General, State of Louisiana - (National) Attorney 
General announces arrest of Baton Rouge man for orchestrating national 
financial fraud scheme. A Baton Rouge man was arrested September 22 for allegedly 
running a major credit-repair fraud involving at least 13 other suspects that resulted in 
over 300 stolen identities and losses of more than $5 million by stealing the Social 
Security numbers of children and selling them as Credit Profile Numbers to individuals 
who needed lines of credit. 

Source: https://www.ag.state.la.us/ Article.aspx?articleID=1106&catID=2 

Transportation Systems Sector 

9. September 23, WKMG 6 Orlando - (Florida) American Airlines flight makes 
emergency landing in Orlando. American Airlines flight 954 headed from Buenos 
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Aires to New York’s John F. Kennedy International Airport made an emergency 
landing at Orlando International Airport in Florida due to fumes detected in the cockpit 
after a potential problem with the plane’s nose gear. No injuries were reported. 

Source: http://www.clickoiiando.com/news/american-airlines-flight-makes-emergencv- 
landing-in-orlando/35430852 

10. September 23, WFTS 28 Tampa Bay - (Florida) Gas tanker crash shuts down 
eastbound 1-4. All eastbound Interstate 4 lanes in Tampa were shut down overnight 
September 22-23 while HAZMAT crews cleared the scene of an accident that involved 
a gasoline tanker that spilled approximately 600 gallons of fuel onto the roadway. The 
cause remains under investigation. 

Source: http://www.abcactionnews.com/news/region-tampa/gas-tanker-crash-shuts- 
down-eastbound-i-4 



11. September 22, WHIO 1290 AM Dayton - (Ohio) Tanker truck crash spills 1,000 
gallons of methanol. State Route 161 in Union County reopened September 23 after 
being shutdown overnight September 22 while crews cleaned up after a semi-truck 
accident spilled an estimated 1 ,000 gallons of methanol onto the roadway. Several 
businesses in the area were evacuated as a precaution and the cause of the accident 
remains under investigation. 

Source: http://www.whio.corn/news/news/local/tanker-truck-crash-spills-1000-gallons- 
of-methanol/nnk6q/ 

12. September 22, WRC 4 Washington, D.C. - (Washington, D.C.) Service restored after 
hundreds of evacuated from stuck Metro train near Papal Mass site. Washington, 
D.C. Metro service on the Green and Yellow lines between the U Street and Fort Totten 
stations was fully restored September 22 after being suspended for hours while 
firefighters helped escort 500-600 passengers out of a Metro tunnel between th 
Columbia Heights and Georgia Ave-Petworth stations, after a northbound train got 
stuck due to a power loss. No injuries were reported. 

Source: http://www.nbcwashington.com/news/local/Metro-Delavs-Expected-on-Green- 
and-Yellow-Lines-32873235 1 .html 



Food and Agriculture Sector 

13. September 22, U.S. Food and Drug Administration - (National) “I and love and you” 
expands voluntary recall of beef gullet strips due to possible health risk. Boulder, 
Colorado-based NatPets LLC, d/b/a “I and love and you” expanded its voluntary recall 
of Cow-Boom! Strips - Beef Gullet products packaged in 2-ounce bags after routine 
sampling revealed the presence of Salmonella. The company notified distributors and 
retailers and consumers were advised to dispose of the product. 

Source: http://www.fda.gov/Safety/Recalls/ucm463636.htm 

14. September 22, U.S. Department of Labor - (West Virginia) Amputation, other 
injuries at Pilgrim’s Pride chicken facilities ‘preventable.’ The Occupational Safety 
and Health Administration cited Pilgrim’s Pride Corp., with 1 repeat and 3 serious 
violations September 11 after Federal inspections of the company’s West Virginia 
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poultry processing facilities revealed that preventable safety violations caused worker’s 
injuries, including amputations and bone fractures in 3 separate incidences from April - 
June. Proposed fines total $46,825. 

Source: 

https://www.osha.gov/pls/oshaweb/owadisp.show document?p table=NEWS RELEA 
SES&p id=28755 

Water and Wastewater Systems Sector 

15. September 23, Associated Press - (Colorado) 4,500 gallons of orange water leaked 
from old Boulder County mine; EPA testing results pending. U.S. Environmental 
Protection Agency officials reported that a leak from the Swathmore Mine in Boulder 
County spilled 4,500 gallons of orange water into a creek, prompting water intake 
systems for Nederland and the city of Boulder were temporarily shut down while tests 
were conducted through September 21. Officials are waiting for results but do not 
believe the spill was toxic. 

Source: 

http://www.dailvioumal.net/view/storv/cl725603463645cd8a9710135d748c7e/CO— 

Mine-Leak 

16. September 22, WYMT Lexington 57 - (Kentucky) Area boil water advisory in effect 
for Martin County. A boil water advisory was issued for about 3,500 customers of 
Martin County Water while crews repair the clarifier at the water plant. 

Source: http://www.wkvt.com/wymt/home/headlines/Area-Boil-Water-Advisorv-in- 
effect-for-Martin-County-328741411.html 



Healthcare and Public Health Sector 

17. September 22, Tampa Bay Times - (North Carolina; Florida) Parent company of 
Florida Hospital settles with feds over false claims. The U.S. Department of Justice 
announced September 22 that Adventist Health System, the parent company of the 
Florida Hospital health network, agreed to pay $115 million to settle allegations that 
several hospitals illegally paid physicians for patient referrals and submitted false 
claims to Medicaid and Medicare at locations in Hendersonville, North Carolina, and at 
several facilities in the Tampa Bay, Florida area. 

Source: http://www.tampabav.com/news/health/parent-companv-of-florida-hospital- 
settles-with-feds-over-false-claims/2246654 



Government Facilities Sector 

18. September 23, NBC News - (National) OPM hack: 5.6 million fingerprints (not 1.1 
million) were stolen. The U.S. Office of Personnel Management confirmed September 
23 that the number of fingerprints of current and former Federal employees impacted in 
a data breach reported June 4 were 5.6 million, up from the 1.1 million originally 
reported in July. 

Source: http ://w w w .nbcnews ■com/tech/security/opm-5-6-million-fingerprints-not- 1 - 1 - 
million- were-n43228 1 
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19. September 23, Associated Press - (New Hampshire) Pelham Schools closed due to 
car striking utility pole. Authorities announced that all schools in Pelham, New 
Hampshire, were closed September 23 after a vehicle hit a utility pole in the area. The 
driver was charged with aggravated drunken driving. 

Source: http://www.sfgate.com/news/article/Pelham-schools-closed-due-to-car- 
striking-utility-65238 14.php 

20. September 23, Los Angeles Times - (California) U.S. President declares major 
disaster in deadly California wildfire. The U.S. President declared a major disaster 
for the 76,067-acre Valley Fire burning in northern California that destroyed an 
estimated 1,261 structures and was 75 percent contained by September 22. Fire crews 
also continued to battle the 70,868-acre Butte Fire, which destroyed over 545 structures 
and was 80 percent contained. 

Source: http://www.msn.com/en-us/news/us/obama-declares-maior-disaster-in-deadly- 
California- wildfire/ar- A AeED s o 

21. September 22, Salt Lake City Deseret News - (Utah) Data breach exposes Salt Lake 
County employee information. The Salt Lake County mayor announced September 
21 that the Social Security numbers and personal medical information of an unknown 
amount of county employees were possibly accessed from June 18 to September 9 
following a breach during a scheduled upgrade by California-based third-party software 
company Systema Software. Salt Lake County officials are investigating the breach and 
how many employees were possibly affected. 

Source: http://www.deseretnews.com/article/865637358/Data-breach-exposes-Salt- 
Lake-Countv-employee-information.html 

Emergency Services Sector 

22. September 22, KWGN 2 Denver - (Colorado) 911 outage affects Bennett, eastern 
Arapahoe County. Emergency calls were transferred to other jurisdictions following a 
wide-spread 9-1-1 outage in Bennett and eastern areas of Arapahoe County September- 
22. Authorities are investigating the cause of the outage and did not provide an 
estimated time for the restoration of service. 

Source: http://kwgn.com/20 1 5/09/22/9 1 1 -outage-affects-bennett-eastem-arapahoe- 
county/ 

23. September 22, KFSM 5 Fort Smith - (Arkansas) Six arrested on suspicion of bringing 
contraband into Carroll County jail. Four inmates at the Carroll County Detention 
Center in Berryville, as well as two other individuals, were charged September 22 on 
suspicion of bringing contraband to the jail following an investigation after a supposed 
technician came to the detention center to repair a phone. Officials contacted the phone 
vendor and determined that no service technician was dispatched to the jail, and found 
records of the inmates allegedly conspiring with the two other suspects to bring 
prescription drugs into the center. 

Source: http://5newsonline.com/2015/09/22/six-arrested-on-suspicion-of-bringing- 
contraband-into-carroll-county-jail/ 
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24. September 22, Washington Post - (Maryland) Three indicted in attempt to smuggle 
contraband by drone into Md. prison. An inmate at Western Correctional Institution 
in Maryland and two former inmates were charged September 22 in connection to a 
scheme to allegedly deliver contraband via drone to the Cumberland prison. Authorities 
uncovered the plot and arrested the two former inmates after a drone and contraband 
were found in their vehicle parked near the prison August 22. 

Source: https://www.washingtonpost.com/local/public-safetv/three-indicted-in-attempt- 
to-smuggle-contraband-bv-drone-into-md-prison/2015/09/22/4c60c80a-616f-lle5- 
8e9e-dce8a2a2a679 story.html 

Information Technology Sector 

25. September 23, Securityweek - (International) Firefox 41 patches critical 
vulnerabilities. Mozilla released updates addressing 30 vulnerabilities in Firefox 
version 41, including use-after- free bugs with IndexedDB and manipulation of 
HyperText Markup Language (HTML) content that could lead to an exploitable crash, 
memory safety bugs that can be exploited to execute arbitrary code, and two flaws 
involving cross-origin resource sharing (CORS)“preflight” request handling, among 
others. 

Source: http://www.securitvweek.com/firefox-41-patches-critical-vulnerabilities 

26. September 23, Softpedia - (International) Brute-forcing URL shorteners can expose 
sensitive corporate information. Security researchers and social engineers discovered 
that brute-force attacks could be used to uncover active short links by services running 
Bit.ly Uniform Resource Locator (URL) shorteners, potentially accessing sensitive or 
private documents passed through a company’s shortener, and that attackers could 
bypass rate limits with the use of proxies. 

Source: http://news.softpedia.com/news/brute-forcing-url-shorteners-can-expose- 
sensitive-corporate-information-492442.shtml 

27. September 23, Help Net Security - (International) WD My Cloud NAS devices can be 
hijacked by attackers. Security researchers from VerSprite discovered vulnerabilities 
in Western Digital My Cloud network attached storage (NAS) products’ RESTful 
Application Program Interface (API) in which any authorized remote user can remotely 
execute commands and steal files belonging to other users, as well as abuse root access 
to the NAS in a private internal network. Researchers also discovered a separate flaw in 
the device’s web application allowing for cross-site request forgery attacks. 

Source: http://www.net-security.org/secworld.php?id=18885 

28. September 23, Securityweek - (International) Large number of iOS apps infected by 
XcodeGhost. Security researchers from Pangu discovered that the number of iOS 
applications affected by the XcodeGhost malware is over 3,400, and FireEye reported 
the number on the App store could be over 4,000. The malware injects malicious code 
into legitimate iOS and OS X applications using a modified version of Apple’s Xcode 
development platform, and has been detected in apps distributed worldwide. 

Source: http://www.securityweek.com/large-number-ios-apps-infected-xcodeghost 
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29. September 23, The Register - (International) Malvertisers slam Forbes, Realtor with 
world’s worst exploit kits. Security researchers from FireEye and Malwarebytes 
reported that multiple Forbes Web sites and Realtor.com were hit with malvertising 
attacks that redirected users to sites hosting the Neutrino and Angler exploit kits (EKs), 
which boast a 40 percent exploit-rate for victims and leverage Adobe Flash, Java, 
Microsoft Silverlight, and other browser vulnerabilities and quickly incorporate zero 
day flaws. 

Source: http://www.theregister.co.uk/2015/09/23/malvertising forbes/ 

30. September 23, Softpedia - (International) New adware facilitates the distribution of 
trojans for Mac users. Security researchers from Dr. Web discovered a new malware 
named “Adware.Mac.WeDownload.l” containing a modified version of Adobe Flash 
Player that, once clicked, requests administrator privileges and contacts a command- 
and-control (C&C) server to install additional malicious applications. 

Source: http://news.softpedia.com/news/new-adware-facilitates-the-distribution-of- 
trojans-for-mac-users-492466.shtml 

For another story, see item 7 



Internet Alert Dashboard 



To report cyber infrastructure incidents or to request information, please contact US-CERT at soc@us-cert.gov or 
visit their Web site: http://www.us-cert.gov 

Information on IT information sharing and analysis can be found at the IT ISAC (Information Sharing and 
Analysis Center) Web site: http://www.it-isac.org 



Communications Sector 

Nothing to report 

Commercial Facilities Sector 

31. September 23, LancasterOnline.com - (Pennsylvania) Fire destroys East Petersburg 
Burger King; $2 million in damage. A September 22 fire that destroyed the Burger 
King in East Petersburg, Pennsylvania caused approximately $2 million in total 
damages. Fire crews extinguished the flames and no injuries were reported. 

Source: http://lancasteronline.com/news/local/fire-strikes-east-petersburg-burger- 
king/article 188056be-61aa-lle5-a46b-23d791dd80e4.html 

32. September 23, Associated Press - (California) 1 killed, 5 hurt after car smashes into 
California gym. Fivermore police reported that an 80-year-old driver accidentally 
drove into a northern California health club September 22, killing 1 person and injuring 
5 others after hitting the gas pedal instead of the brakes, crashing through the club’s 
front doors and into an early-morning workout class. 

Source: http://www.msn.com/en-us/news/us/l-killed-5-hurt-after-car-smashes-into- 
california-gym/ar-AAeCq67 
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33. September 22, KBAK 29 Bakersfield/KBFX 58 Bakersfield - (California) Woman 
arrested on suspicion of arson in motel fire. Bakersfield officials reported September 
22 that a woman was arrested on suspicion of arson in connection to a September 21 
fire that began at the Manila Motel, displacing 20 residents and causing an estimated 
$400,000 in damages. 

Source: http://www.bakersfieldnow.com/news/local/Woman-arrested-for-arson-in- 
motel-fire-3287 13171 .html 

34. September 22, WQOW 18 Eau Claire - (Wisconsin) Chippewa Falls church 
continues after devastating fire. Chippewa Falls officials reported September 22 that 
an overnight fire at Valley Vineyard Church damaged the church’s lobby, offices, and 
potentially the sanctuary, totaling about $900,000 in damages. 

Source: http://www.wqow.com/story/30085051/2015/09/22/breaking-firefighters- 
battling-blaze-at-church-in-chippewa-falls 

Dams Sector 



35. September 22, Portland Oregonian - (Oregon) Portland’s Washington Park 
reservoir project could cost $170 million. The Portland City Council reported 
September 22 that the plan to build a new underground drinking water reservoir and 
reflecting pool at Washington Park will cost at least $100 million more and take 2 years 
longer than initially estimated due to a result of unstable soil conditions in the park and 
concerns associated with a potential earthquake. 

Source: 

http://www.oregonlive.com/portland/index.ssf/2015/09/portlands Washington park res 
e.html 



36. September 22, Nashoba Publishing - (Massachusetts) Turner Dam removal will 
restore Nissitissit River. Officials announced plans begin removing the Millie Turner 
Dam across the Nissitissit River in Pepperell September 28 to improve ecological 
conditions, eliminate a public safety hazard, reduce flooding risks, and enhance climate 
change resiliency. 

Source: http://www.nashobapublishing.com/communitv news/ci 28853068/turner- 
dam-removal- will-restore-nissitissit-river 



37. September 21, U.S. Department of Labor - (Michigan) US Army Corps of Engineers 
workers faces unsafe conditions at Soo Locks. The U.S. Department of Labor’s 
Occupational Safety and Health Administration issued the U.S. Army Corps of 
Engineers September 21 with 21 serious and two repeated violations after an inspection 
of Michigan’s historic Soo Locks revealed unsafe and unhealthy working conditions 
after the Corps ignored a September 2014 report that called for immediate equipment 
repairs. 

Source: 

https://www.osha.gov/pls/oshaweb/owadisp.show document?p table=NEWS RELEA 
SES&p id=28746 
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Department of Homeland Security (DHS) 

DHS Daily Open Source Infrastructure Report Contact Information 

About the reports - The DHS Daily Open Source Infrastructure Report is a daily [Monday 
through Friday] summary of open-source published information concerning significant critical 
infrastructure issues. The DHS Daily Open Source Infrastructure Report is archived for 10 days on 
the Department of Homeland Security Web site: http://www.dhs.gov/lPDailyReport 

Contact Information 

Content and Suggestions: Send mail to cikr.productfeedback@hq.dhs.gov or contact the DHS 

Daily Report Team at (703) 942-8590 

Subscribe to the Distribution List: Visit the DHS Daily Open Source Infrastructure Report and follow 

instructions to Get e-mail updates when this information changes . 

Removal from Distribution List: Send mail to support @ govdelivery.com . 



Contact DHS 

To report physical infrastructure incidents or to request information, please contact the National Infrastructure 
Coordinating Center at nicc@hq.dhs.gov or (202) 282-9201. 

To report cyber infrastructure incidents or to request information, please contact US-CERT at soc@us-cert.gov or visit 
their Web page at www.us-cert. gov . 

Department of Homeland Security Disclaimer 

The DHS Daily Open Source Infrastructure Report is a non-commercial publication intended to educate and inform 
personnel engaged in infrastructure protection. Further reproduction or redistribution is subject to original copyright 
restrictions. DHS provides no warranty of ownership of the copyright, or accuracy with respect to the original source 
material. 
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